Re: mac trojan in-the-wild

From: Matthew Leeds <mleeds(at)theleeds.net>
Date: Thu Nov 01 2007 - 16:57:06 EDT

Let's see now, user must:

1. Navigate to porn site
2. Download Trojan
3. Either open file or have set 'Open Safe Files...'
4. Must allow install by typing admin password

Oh yeah, this will clearly hit Mac users hard, not. I don't see this as a big deal, more as Darwin in action (if you will not mind the pun). How this is a big deal is hard to see. Just a few more machines in the bot net.

Now a self-replicating virus, that might be an issue, but this is a dead end. Not even a very effective drive by.

---

---Matthew
*********** REPLY SEPARATOR *********** On 10/31/2007 at 6:21 PM Gadi Evron wrote:

>For whoever didn't hear, there is a Macintosh trojan in-the-wild being
>dropped, infecting mac users.
>Yes, it is being done by a regular online gang--itw--it is not yet another
>proof of concept. The same gang infects Windows machines as well, just
>that now they also target macs.
>
>http://sunbeltblog.blogspot.com/2007/10/screenshot-of-new-mac-trojan.html
>http://sunbeltblog.blogspot.com/2007/10/mackanapes-can-now-can-feel-pain-of.html
>
>This means one thing: Apple's day has finally come and Apple users are
>going to get hit hard. All those unpatched vulnerabilities from years past
>are going to bite them in the behind.
>
>I can sum it up in one sentence: OS X is the new Windows 98. Investing in
>security ONLY as a last resort losses money, but everyone has to learn it
>for themselves.
>
>Gadi Evron.
Received on Thu Nov 1 17:04:02 2007